At 2:06 PM -0700 4/11/00, [EMAIL PROTECTED] wrote:
> > I noticed an interesting problem that if you log in with something like
>>
>> http://localhost/servlets/Turbine/screen/Login
>>
>> then type in your user name and password, the next screen rewrites
>> the URL and redirects to the login page. The problem is that your
>> password shows up in the rewritten URL on the browser's location line!
>
><form method="POST"> will prevent that. This isn't a Turbine issue, it is
>the way that you wrote your <form> tag.
Actually this happens with the default screens with a current
checkout. There is no form involved since it is a redirect. It is in
Turbine.java at the beginning of the doGet method. I didn't see any
way around it without using the session data.
> > One possibility for fixing this might be to use the servlet session
>> to include information about the 'next page' instead of through
> > rewriting the URL.
>
>It has nothing to do with that.
How does one redirect using a post method? Did I miss something in my
"Servlets for Jock's" accredited course? ;-) I probably did; so if
it's obvious, I'll find it eventually and fix it and submit the patch.
> > As a further extension, we could build some of the automatic
> > functionality of dialogs into the base 'Screen' class. In specific,
> > instead of just asking a screen for its content, we could add methods
> > for configuring the 'prerequisites' of any particular screen
> > automatically -- login would be one example... That way global items
> > such as login's could be controlled more easily and it would cease to
> > be a special case in the main servlet class... The prerequisites
> > could function on a global basis, per screen basis, or by some other
> > criteria.
>
>Ok. Send a diff.
Give me a few days :) I have a day job unfortunately and I still have
it in my homework list to read through the mail archives...
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Problems?: [EMAIL PROTECTED]
